Close Menu
  • Instructions
  • News
    • DeFi
    • Smart Contract
    • Markets
    • Web3
    • Adoption
    • Memecoins
    • Analysis
    • Mining
    • Scams
    • Security
  • Education
    • Learn
    • Wallets & Exchange
  • Documentaries
  • Videos
    • Alessio Rastani
    • Altcoin Buzz
    • Coin Bureau
    • Dapp University
    • DataDash
    • Digital asset News
    • EllioTrades Crypto
    • MMCrypto
    • Lark Davis
    • Ivan on Tech
    • Benjamin Cowen
  • Market
    • Crypto Market Cap
    • Heat Map
    • Converter
    • Metal Prices
    • Stock prices
  • Bonus Books
  • Tools
What's Hot

Mizuho downgrades Circle to underperform, cuts price target to $50 on Open USD threat

July 14, 2026

Senate CLARITY Act Ready for Prime Time, Bill Text Coming in Days: Senator Lummis

July 14, 2026

BlueMove’s $500K SUI loss raises insider job suspicions

July 14, 2026
Facebook X (Twitter) Instagram
Recession Profit AlertsRecession Profit Alerts
  • Instructions
  • News
    • DeFi
    • Smart Contract
    • Markets
    • Web3
    • Adoption
    • Memecoins
    • Analysis
    • Mining
    • Scams
    • Security
  • Education
    • Learn
    • Wallets & Exchange
  • Documentaries
  • Videos
    • Alessio Rastani
    • Altcoin Buzz
    • Coin Bureau
    • Dapp University
    • DataDash
    • Digital asset News
    • EllioTrades Crypto
    • MMCrypto
    • Lark Davis
    • Ivan on Tech
    • Benjamin Cowen
  • Market
    • Crypto Market Cap
    • Heat Map
    • Converter
    • Metal Prices
    • Stock prices
  • Bonus Books
  • Tools
Recession Profit AlertsRecession Profit Alerts
Home»Security»$6 Million Drained in Ethereum DeFi Exploit
Security

$6 Million Drained in Ethereum DeFi Exploit

July 6, 2026No Comments2 Mins Read

On Monday morning, major multichain protocol Summer.fi, formerly Oasis.app, was hit by a sophisticated hacker attack. The attacker managed to drain the project’s automated vaults and withdraw about $6 million in $DAI stablecoins. The incident was quickly detected by leading security firms Blockaid, PeckShield and CertiK.

The 2,000,000% trap

This hack stood out because of its abnormal mechanics. The hacker used a massive flash loan worth $65.4 million to artificially distort liquidity inside the “LazyVault_LowerRisk_$USDC” pool. This vault had been positioned by developers as a lower-risk instrument, while its security was overseen by Block Analitica.

At the moment of the manipulation, the pool’s algorithms suffered a critical failure, causing the displayed yield, or APY, of the conservative vault to briefly jump to an absurd 2,080,000%. It was through this window of distorted pricing that the hacker was able to instantly withdraw user funds.

#PeckShieldAlert Main affected vault: @summerfinance_ LazyVault_LowerRisk_$USDC (LVUSDC), risk-managed by @BlockAnalitica.

LVUSDC’s displayed APY briefly spiked to ~2.08M%.

The largest current holder is 0x8741e8f…4130, which appears to be associated with Torben Jorgensen… pic.twitter.com/jscIC554Ee

— PeckShieldAlert (@PeckShieldAlert) July 6, 2026

For Summer.fi, this incident continued a series of problems inside its multichain infrastructure, which spans Ethereum, Base and Arbitrum. Over the past year alone, the protocol had already faced frozen withdrawals because of the USDX stablecoin depeg, narrowly avoided an attack through the rsETH project, and blocked a malicious governance proposal at the last moment after it exploited old access permissions.

The new hack occurred against the backdrop of a difficult year for the entire Web3 industry. According to analysts, by the start of Q3 2026, total DeFi-sector losses from cyberattacks had already exceeded $840 million, with the main blow coming in a record April that accounted for more than $640 million.

See also  Expert Warns of Critical, Ongoing Supply Chain Attack on Axios

The exploit mainly affected large players. According to on-chain intelligence, the biggest loss was suffered by a wallet linked to Torben Jorgensen, co-founder of Web3 company UDHC, who had deposited about 8.6 million $USDC into the affected pool shortly before the attack. All stolen $DAI was quickly converted through Uniswap V3 pools.

At the time of writing, the Summer.fi team has temporarily paused all compromised contracts, but no official statements about compensation have been released yet.



Source link

DeFi drained Ethereum Exploit Million

Related Posts

BlueMove’s $500K SUI loss raises insider job suspicions

July 14, 2026

Cape Town Seizes Luxury Mercedes Tied to Crypto Investment Scams

July 14, 2026

Hacker Uses Stolen Robinhood Founder Wallet to Orchestrate Memecoin Pump-and-Dump

July 14, 2026

Hackers use SpaceXAI, Starlink X accounts to pump SCATMAN: Token crashes 98%

July 14, 2026
Top Posts

Nigeria Senate Pushes Crypto Bill to Committee, Setting Up 4-Week Review Phase

June 11, 2026

Vitalik Buterin Unveils Model for Ethereum Staking

October 7, 2023

Wall Street’s trillion-dollar dilemma: Why AI-powered hackers are keeping big banks off the blockchain

May 30, 2026

Type above and press Enter to search. Press Esc to cancel.